From d29253710f20141de13dd6f066bffd66e44150f8 Mon Sep 17 00:00:00 2001
From: Aldo Lacuku <aldo@lacuku.eu>
Date: Mon, 11 Nov 2024 11:28:30 +0100
Subject: [PATCH 1/3] fix(falco/dashboard): make pod variable independent of
 triggered rules

CPU and memory are now visible for each pod, even when no rules have been triggered for
that falco instance.

Signed-off-by: Aldo Lacuku <aldo@lacuku.eu>
---
 charts/falco/dashboards/falco-dashboard.json | 31 ++++++++++----------
 1 file changed, 16 insertions(+), 15 deletions(-)

diff --git a/charts/falco/dashboards/falco-dashboard.json b/charts/falco/dashboards/falco-dashboard.json
index da34634e..77895d32 100644
--- a/charts/falco/dashboards/falco-dashboard.json
+++ b/charts/falco/dashboards/falco-dashboard.json
@@ -2516,14 +2516,14 @@
           "type": "prometheus",
           "uid": "${datasource}"
         },
-        "definition": "label_values(falcosecurity_falco_rules_matches_total,namespace)",
+        "definition": "label_values(falcosecurity_falco_cpu_usage_ratio,namespace)",
         "includeAll": true,
         "multi": true,
         "name": "namespace",
         "options": [],
         "query": {
           "qryType": 1,
-          "query": "label_values(falcosecurity_falco_rules_matches_total,namespace)",
+          "query": "label_values(falcosecurity_falco_cpu_usage_ratio,namespace)",
           "refId": "PrometheusVariableQueryEditor-VariableQuery"
         },
         "refresh": 1,
@@ -2543,15 +2543,14 @@
           "type": "prometheus",
           "uid": "${datasource}"
         },
-        "definition": "label_values(falcosecurity_falco_rules_matches_total{namespace=~\"$namespace\"},source)",
+        "definition": "label_values(falcosecurity_falco_cpu_usage_ratio{namespace=~\"$namespace\"},pod)",
         "includeAll": true,
-        "label": "source",
         "multi": true,
-        "name": "source",
+        "name": "pod",
         "options": [],
         "query": {
           "qryType": 1,
-          "query": "label_values(falcosecurity_falco_rules_matches_total{namespace=~\"$namespace\"},source)",
+          "query": "label_values(falcosecurity_falco_cpu_usage_ratio{namespace=~\"$namespace\"},pod)",
           "refId": "PrometheusVariableQueryEditor-VariableQuery"
         },
         "refresh": 2,
@@ -2572,15 +2571,15 @@
           "type": "prometheus",
           "uid": "${datasource}"
         },
-        "definition": "label_values(falcosecurity_falco_rules_matches_total{namespace=~\"$namespace\", source=~\"$source\"},priority)",
+        "definition": "label_values(falcosecurity_falco_rules_matches_total{namespace=~\"$namespace\", pod=~\"$pod\"},source)",
         "includeAll": true,
-        "label": "priority",
+        "label": "source",
         "multi": true,
-        "name": "priority",
+        "name": "source",
         "options": [],
         "query": {
           "qryType": 1,
-          "query": "label_values(falcosecurity_falco_rules_matches_total{namespace=~\"$namespace\", source=~\"$source\"},priority)",
+          "query": "label_values(falcosecurity_falco_rules_matches_total{namespace=~\"$namespace\", pod=~\"$pod\"},source)",
           "refId": "PrometheusVariableQueryEditor-VariableQuery"
         },
         "refresh": 2,
@@ -2601,18 +2600,20 @@
           "type": "prometheus",
           "uid": "${datasource}"
         },
-        "definition": "label_values(falcosecurity_falco_rules_matches_total{namespace=~\"$namespace\", source=~\"$source\"},pod)",
+        "definition": "label_values(falcosecurity_falco_rules_matches_total{namespace=~\"$namespace\", source=~\"$source\"},priority)",
         "includeAll": true,
+        "label": "priority",
         "multi": true,
-        "name": "pod",
+        "name": "priority",
         "options": [],
         "query": {
           "qryType": 1,
-          "query": "label_values(falcosecurity_falco_rules_matches_total{namespace=~\"$namespace\", source=~\"$source\"},pod)",
+          "query": "label_values(falcosecurity_falco_rules_matches_total{namespace=~\"$namespace\", source=~\"$source\"},priority)",
           "refId": "PrometheusVariableQueryEditor-VariableQuery"
         },
-        "refresh": 1,
+        "refresh": 2,
         "regex": "",
+        "sort": 4,
         "type": "query"
       }
     ]
@@ -2625,6 +2626,6 @@
   "timezone": "browser",
   "title": "Falco",
   "uid": "ddwe2ug4nfi0wb",
-  "version": 45,
+  "version": 46,
   "weekStart": ""
 }
\ No newline at end of file

From 5d3e66f107a2e24ba8ee520c45bce46b70f0b10e Mon Sep 17 00:00:00 2001
From: Aldo Lacuku <aldo@lacuku.eu>
Date: Mon, 11 Nov 2024 11:34:15 +0100
Subject: [PATCH 2/3] chore(falco): bump chart version

Signed-off-by: Aldo Lacuku <aldo@lacuku.eu>
---
 charts/falco/CHANGELOG.md | 3 +++
 charts/falco/Chart.yaml   | 2 +-
 charts/falco/README.md    | 2 +-
 3 files changed, 5 insertions(+), 2 deletions(-)

diff --git a/charts/falco/CHANGELOG.md b/charts/falco/CHANGELOG.md
index 6463802e..17655ce5 100644
--- a/charts/falco/CHANGELOG.md
+++ b/charts/falco/CHANGELOG.md
@@ -2,6 +2,9 @@
 
 This file documents all notable changes to Falco Helm Chart. The release
 numbering uses [semantic versioning](http://semver.org).
+## v4.14.1
+* fix(falco/dashboard): make pod variable independent of triggered rules. CPU and memory are now visible for each 
+  pod, even when no rules have been triggered for that falco instance.
 
 ## v4.14.0
 * Bump k8smeta plugin to 0.2.1, see: https://github.com/falcosecurity/plugins/releases/tag/plugins%2Fk8smeta%2Fv0.2.1
diff --git a/charts/falco/Chart.yaml b/charts/falco/Chart.yaml
index 98e16207..b41d33e7 100644
--- a/charts/falco/Chart.yaml
+++ b/charts/falco/Chart.yaml
@@ -1,6 +1,6 @@
 apiVersion: v2
 name: falco
-version: 4.14.0
+version: 4.14.1
 appVersion: "0.39.1"
 description: Falco
 keywords:
diff --git a/charts/falco/README.md b/charts/falco/README.md
index d3dad598..f471dca0 100644
--- a/charts/falco/README.md
+++ b/charts/falco/README.md
@@ -581,7 +581,7 @@ If you use a Proxy in your cluster, the requests between `Falco` and `Falcosidek
 
 ## Configuration
 
-The following table lists the main configurable parameters of the falco chart v4.14.0 and their default values. See [values.yaml](./values.yaml) for full list.
+The following table lists the main configurable parameters of the falco chart v4.14.1 and their default values. See [values.yaml](./values.yaml) for full list.
 
 ## Values
 

From 7d598d5f44c6b38f76e128f53554377a6a2091ea Mon Sep 17 00:00:00 2001
From: Aldo Lacuku <aldo@lacuku.eu>
Date: Mon, 11 Nov 2024 16:06:28 +0100
Subject: [PATCH 3/3] chore(falco): apply suggestions

Co-authored-by: Thomas Labarussias <issif+github@gadz.org>
Signed-off-by: Aldo Lacuku <aldo@lacuku.eu>
---
 charts/falco/CHANGELOG.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/charts/falco/CHANGELOG.md b/charts/falco/CHANGELOG.md
index 17655ce5..2da95e0e 100644
--- a/charts/falco/CHANGELOG.md
+++ b/charts/falco/CHANGELOG.md
@@ -2,6 +2,7 @@
 
 This file documents all notable changes to Falco Helm Chart. The release
 numbering uses [semantic versioning](http://semver.org).
+
 ## v4.14.1
 * fix(falco/dashboard): make pod variable independent of triggered rules. CPU and memory are now visible for each 
   pod, even when no rules have been triggered for that falco instance.